npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@cerberus-ai/core

v1.4.0

Published

Runtime security for AI agent tool execution. Detects, correlates, and interrupts guarded Lethal Trifecta attack paths.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

manofstyle04manofstyle04

Keywords

ai-securityagentic-aiprompt-injectiondata-exfiltrationruntime-securityllm-securitycerberus

Readme

Cerberus Core

Runtime security for AI agent tool execution.

CI Python SDK npm version PyPI version License: MIT

Cerberus Core is the embeddable runtime enforcement layer for AI agents. It correlates privileged data access, untrusted content ingestion, and outbound behavior at the tool-call level, then interrupts guarded outbound actions before they execute.

Cerberus Core overview

See It Working

Open the live public demo
Open the guided getting started path

Blocked outbound runtime action

Cerberus Core is built to prove one thing clearly: if an agent reads sensitive data, ingests untrusted instructions, and then attempts a guarded outbound action, Core can correlate that runtime chain and interrupt it before the tool executes.

Install

npm install @cerberus-ai/core
# or
pip install cerberus-ai

Documentation

Verify In Under A Minute

npm install
npm run harness:action:report

Then open:

  • test-results/action-harness-report.html

This runs the real guard() runtime against a compact set of control, attack, and observation scenarios and produces an operator-readable HTML report.

TypeScript Quickstart

import { guard } from '@cerberus-ai/core';

const { executors: secured } = guard(
  {
    readDatabase: async (args) => fetchFromDb(args.query),
    fetchUrl: async (args) => httpGet(args.url),
    sendEmail: async (args) => smtp.send(args),
  },
  {
    alertMode: 'interrupt',
    threshold: 3,
    trustOverrides: [
      { toolName: 'readDatabase', trustLevel: 'trusted' },
      { toolName: 'fetchUrl', trustLevel: 'untrusted' },
    ],
  },
  ['sendEmail'],
);

Python Quickstart

from cerberus_ai import Cerberus
from cerberus_ai.models import CerberusConfig, DataSource, ToolSchema

cerberus = Cerberus(CerberusConfig(
    data_sources=[DataSource(name="customer_db", classification="PII", description="Customer records")],
    declared_tools=[
        ToolSchema(name="search_db", description="Search CRM", is_data_read=True),
        ToolSchema(name="send_email", description="Send email", is_network_capable=True),
    ],
))

What Core Includes

  • TypeScript SDK in src/
  • Python SDK in sdk/python/
  • test suites in tests/
  • minimal examples in examples/
  • Signed EGI manifests via a pluggable Signer / Verifier protocol (Ed25519 default, HMAC-SHA256 legacy). See docs/egi-signed-manifests.md.

What Core Does Not Include

This repository is intentionally limited to the public Core SDK surface.

Enterprise gateway, monitoring, commercial deployment tooling, hosted product operations, deep validation trace corpora, and licensing infrastructure belong in separate private product infrastructure.

License

MIT. See LICENSE.